github-trending-analyzer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow invokes scripts/fetch_trending.sh which uses curl to fetch live, public GitHub Trending pages (https://github.com/trending), i.e., untrusted user-generated content that the agent must read and use to assemble inventories, categorizations, and strategic actions—so third‑party content can materially influence behavior and enable indirect prompt injection.